CVS commit: src/etc

To: source-changes%NetBSD.org@localhost
Subject: CVS commit: src/etc
From: "Taylor R Campbell" <riastradh%netbsd.org@localhost>
Date: Fri, 30 Jun 2023 21:42:29 +0000

Module Name:    src
Committed By:   riastradh
Date:           Fri Jun 30 21:42:29 UTC 2023

Modified Files:
        src/etc: security

Log Message:
security(5): Check kern.entropy.needed for confident entropy.

Don't test whether a non-blocking read from /dev/random would return
data.

For the sake of availability, /dev/random will unblock based on sources
like timer interrupts, which we can't confidently assert anything about
the actual unpredictability of.

Here, the goal is to highlight systems that have neither obtained
entropy from an HWRNG with a confident entropy assessment, nor been
seeded from a source the operator knows about.

XXX pullup-10


To generate a diff of this commit:
cvs rdiff -u -r1.129 -r1.130 src/etc/security

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Prev by Date: CVS commit: src
Next by Date: CVS import: src/external/bsd/openpam/dist
Previous by Thread: CVS commit: src
Next by Thread: CVS import: src/external/bsd/openpam/dist
Indexes:

Home | Main Index | Thread Index | Old Index